Certificate problem

guru1612 · June 3, 2021, 11:39am

hi ,
i have a prolem when connecting searchguard and elasticsearch.
the problem is
Search Guard Admin v7
Will connect to localhost:9300 … done
Connected as CN=localhost,OU=CE,O=CE,DC=Circular Edge,DC=com
ERR: CN=localhost,OU=CE,O=CE,DC=Circular Edge,DC=com is not an admin user
Seems you use a node certificate. This is not permitted, you have to use a client certificate and register it as admin_dn in elasticsearch.yml

how to solve this?
I attached .yml files with this
elasticsearch.yml (3.5 KB)
topic.

jkressin · June 3, 2021, 12:38pm

It seems that when you use sgadmin to make configuration changes you have specified a node certificate, not an admin certificate. For security reasons, you cannot use a node certificate with sgadmin.

In your elasticsearch.yml you have configured one node certificate:

searchguard.nodes_dn:
- CN=localhost,OU=CE,O=CE,DC=Circular Edge,DC=com

and two admin certificates:

searchguard.authcz.admin_dn:
- CN=spock.com,OU=CE,O=CE,DC=Circular Edge,DC=com
- CN=kirk.com,OU=CE,O=CE,DC=Circular Edge,DC=com

Please use either the spock or kirk certificate with sgadmin.

system · June 24, 2021, 12:38pm

This topic was automatically closed 21 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
ERR: You try to connect with a ssl node certificate instead of an admin client certificate Search Guard	7	534	April 4, 2018
Try to connect with a ssl node certificate instead of an admin client certificate Search Guard	3	588	December 28, 2017
Seems you use a client certificate but this one is not registered as admin_dn Search Guard	5	1307	January 2, 2023
Searchgurad admin user vs certificate Search Guard	3	431	August 7, 2018
sgadmin client certificate authentication not working when using provider signed server certificate Search Guard	5	653	November 14, 2017

Certificate problem

Related topics